Apache Tomcat Exposes Sensitive Server Information

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Apache Tomcat Exposes Sensitive Server Information

BELL-CVE-2026-23468

Summary

Apache Tomcat servers may expose sensitive information about the server and its configuration. This could allow an attacker to gather valuable information that could be used to launch targeted attacks. Apache has released a patch to address this issue, so it's essential to update your Apache Tomcat installation as soon as possible.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Ecosystem	Vendor	Product	Affected versions
Alpaquita:23	bellsoft	linux-lts	>= 6.1.167-r0
Alpaquita:25	bellsoft	linux-lts	>= 6.12.80-r0
Alpaquita:stream	bellsoft	linux-lts	>= 6.12.80-r0

Original title

BELL-CVE-2026-23468

https://docs.bell-sw.com/security/cves/CVE-2026-23468 Vendor Advisory

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026